From d22169cfd68a26c04ca6d1aa997575f1b3e4cc80 Mon Sep 17 00:00:00 2001
From: jim-p <jimp@pfsense.org>
Date: Wed, 9 Apr 2014 08:45:31 -0400
Subject: Use an alphanumeric test rather than purely is_numericint because the
 ID is generated by uniqid and is not purely numeric. Fixes #3591

---
 usr/local/www/system_crlmanager.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/usr/local/www/system_crlmanager.php b/usr/local/www/system_crlmanager.php
index 5d244a1..22665ba 100644
--- a/usr/local/www/system_crlmanager.php
+++ b/usr/local/www/system_crlmanager.php
@@ -49,9 +49,9 @@ $crl_methods = array(
 	"internal" => gettext("Create an internal Certificate Revocation List"),
 	"existing" => gettext("Import an existing Certificate Revocation List"));
 
-if (is_numericint($_GET['id']))
+if (ctype_alnum($_GET['id']))
 	$id = $_GET['id'];
-if (isset($_POST['id']) && is_numericint($_POST['id']))
+if (isset($_POST['id']) && ctype_alnum($_POST['id']))
 	$id = $_POST['id'];
 
 if (!is_array($config['ca']))
-- 
cgit v1.1